Lucene search
K

191 matches found

NVD
NVD
added 2025/02/14 4:15 a.m.16 views

CVE-2025-26519

musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS0.00335EPSS
Exploits0References9
OSV
OSV
added 2025/02/14 4:15 a.m.7 views

UBUNTU-CVE-2025-26519

musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS7.1AI score0.00335EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/02/14 12:0 a.m.8 views

musl libc 安全漏洞

musl libc is an open source C standard library. It is mainly used for embedded systems and mobile devices, etc. A security vulnerability exists in musl libc, which originates from an attacker triggering an untrustworthy EUC-KR text conversion that can lead to out-of-bounds writes...

8.1CVSS7.7AI score0.00335EPSS
Exploits0References9
OSV
OSV
added 2025/02/14 12:0 a.m.10 views

CVE-2025-26519

musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS8.1AI score0.00335EPSS
Exploits0References11
CVE
CVE
added 2025/02/14 12:0 a.m.127 views

CVE-2025-26519

CVE-2025-26519 affects musl libc versions 0.9.13 through 1.2.5 (before 1.2.6). The vulnerability is an out-of-bounds write triggered when iconv converts untrusted EUC-KR text to UTF-8. The connected IBM/NVD entries confirm the affected range and the trigger via EUC-KR text, but do not provide rem...

8.1CVSS7.1AI score0.00335EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2025/02/14 12:0 a.m.64 views

CVE-2025-26519

musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS0.00335EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/02/14 12:0 a.m.41 views

CVE-2025-26519

musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS7.1AI score0.00335EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/02/09 12:0 a.m.6 views

PT-2025-7175

Name of the Vulnerable Software and Affected Versions musl libc versions 0.9.13 through 1.2.5 Description The issue is related to an out-of-bounds write vulnerability in musl libc when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8. This can be exploited when an...

8.1CVSS8.4AI score0.00335EPSS
Exploits0References50
Openbugbounty
Openbugbounty
added 2023/12/08 2:9 p.m.9 views

r09.kr Cross Site Scripting vulnerability OBB-3806283

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/08/27 3:3 p.m.7 views

eb5.kr Cross Site Scripting vulnerability OBB-3620996

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/14 12:22 a.m.14 views

kr-pl-lehmann.net Cross Site Scripting vulnerability OBB-3427299

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/05/31 2:9 a.m.18 views

law.daegu.ac.kr Cross Site Scripting vulnerability OBB-3368608

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:48 p.m.99 views

K68251873: glibc vulnerability CVE-2019-25013

Security Advisory Description The iconv feature in the GNU C Library aka glibc or libc6 through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read. CVE-2019-25013 Impact A buffer over-read may lead to segmentation fault, causing system...

7.1CVSS7.2AI score0.03538EPSS
Exploits0Affected Software16
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.5 views

SUSE CVE-2019-25013

The iconv feature in the GNU C Library aka glibc or libc6 through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read...

5.3CVSS9.8AI score0.03538EPSS
Exploits0References125
Openbugbounty
Openbugbounty
added 2023/01/12 12:2 p.m.10 views

wonju1388.kr Cross Site Scripting vulnerability OBB-3144770

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/12/19 8:20 p.m.6 views

CLSA-2022-1671481209 Fix CVE(s): CVE-2020-27618, CVE-2019-25013

SECURITY UPDATE: buffer overrun in EUC-KR conversion module - debian/patches/any/CVE-2019-25013: skip two bytes when told to skip over the unknown designation, potentially running over the buffer end - CVE-2019-25013 SECURITY UPDATE: hang in the iconv program - debian/patches/any/CVE-2020-27618:...

7.1CVSS7AI score0.03538EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2022/10/21 12:0 a.m.35 views

Amazon Linux 2 : golang-github-kr-pty (ALAS-2022-1864)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1864 advisory. 2023-05-11: CVE-2022-1996 has changed status to NOT AFFECTED for this package and has been removed from this advisory. A flaw was found in golang. The HTTP/1 client accepted invalid...

9.3CVSS7.2AI score0.05416EPSS
Exploits7References32
Openbugbounty
Openbugbounty
added 2022/09/24 11:51 a.m.13 views

orange1.kr Cross Site Scripting vulnerability OBB-2945996

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/09/09 3:15 p.m.5 views

CVE-2022-36870

Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent...

6.5CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2022/09/09 2:40 p.m.51 views

CVE-2022-36872

The CVE-2022-36872 entry describes a Pending Intent hijacking vulnerability in Samsung Pay’s SpayNotification component. Affected are Samsung Pay versions prior to 5.0.63 for Korea and prior to 5.1.47 for Global, where an attacker could access files without permission by exploiting an implicit In...

6.5CVSS6.4AI score0.00166EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder